Vulnerabilities > Incorrect Conversion between Numeric Types

DATE CVE VULNERABILITY TITLE RISK
2024-11-28 CVE-2024-7747 The Wallet for WooCommerce plugin for WordPress is vulnerable to incorrect conversion between numeric types in all versions up to, and including, 1.5.6.
network
low complexity
CWE-681
6.5
2024-02-06 CVE-2023-28063 Incorrect Conversion between Numeric Types vulnerability in Dell products
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability.
local
low complexity
dell CWE-681
4.4
2023-11-03 CVE-2023-46848 Incorrect Conversion between Numeric Types vulnerability in multiple products
Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input.
network
low complexity
squid-cache redhat CWE-681
7.5
2023-09-27 CVE-2023-5184 Incorrect Conversion between Numeric Types vulnerability in Zephyrproject Zephyr
 Two potential signed to unsigned conversion errors and buffer overflow vulnerabilities at the following locations in the Zephyr IPM drivers.
local
low complexity
zephyrproject CWE-681
8.8
2023-07-12 CVE-2023-3635 Incorrect Conversion between Numeric Types vulnerability in Squareup Okio
GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer.
network
low complexity
squareup CWE-681
7.5
2023-06-28 CVE-2023-20006 Incorrect Conversion between Numeric Types vulnerability in Cisco products
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to an implementation error within the cryptographic functions for SSL/TLS traffic processing when they are offloaded to the hardware.
network
low complexity
cisco CWE-681
7.5
2023-04-01 CVE-2023-0185 Incorrect Conversion between Numeric Types vulnerability in Nvidia Virtual GPU
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign conversion issuescasting an unsigned primitive to signed may lead to denial of service or information disclosure.
local
low complexity
nvidia CWE-681
7.1
2023-03-20 CVE-2022-43663 Incorrect Conversion between Numeric Types vulnerability in Wellintech Kinghistorian 35.01.00.05
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05.
network
low complexity
wellintech CWE-681
critical
9.8
2022-12-30 CVE-2022-34670 Incorrect Conversion between Numeric Types vulnerability in multiple products
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause truncation errors when casting a primitive to a primitive of smaller size causes data to be lost in the conversion, which may lead to denial of service or information disclosure.
local
low complexity
nvidia debian CWE-681
7.8
2022-12-30 CVE-2022-34677 Incorrect Conversion between Numeric Types vulnerability in multiple products
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause an integer to be truncated, which may lead to denial of service or data tampering.
local
low complexity
nvidia debian CWE-681
7.1